Описание
SQL injection vulnerability in the manage configuration page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.16 allows remote authenticated administrators to execute arbitrary SQL commands via the filter_config_id parameter.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | not-affected | |
| precise | not-affected | |
| quantal | not-affected | |
| saucy | not-affected | 1.2.11-1.2 |
| upstream | released | 1.2.17 |
Показывать по
EPSS
6.5 Medium
CVSS2
Связанные уязвимости
SQL injection vulnerability in the manage configuration page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.16 allows remote authenticated administrators to execute arbitrary SQL commands via the filter_config_id parameter.
SQL injection vulnerability in the manage configuration page (adm_conf ...
SQL injection vulnerability in the manage configuration page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.16 allows remote authenticated administrators to execute arbitrary SQL commands via the filter_config_id parameter.
EPSS
6.5 Medium
CVSS2